We formulate mitigation measures, develop for fixing the vulnerability, and develop security early warning strategy.

Disclosure

Official disclose vulnerability information when security problem have precautionary measures and fix patches.

The Security Emergency Response Center will strictly control the spread of vulnerability information and limit it to the person who handles the vulnerability. It also requires the vulnerability reporter to keep the vulnerability confidential until it is publicly disclosed.

The Security Emergency Response Center provides Base Metrics and Temporal Metrics for vulnerabilities based on the CVSS (Common Vulnerability Scoring System). Based on Customers’ environment, they can get Environmental Metrics according to their own needs.